As reported in Luc's blog, adding user with OTP auth type does not work:
# ipa user-add hwurst --first="Hans" --last="Wurst" --user-auth-type=otp ipa: ERROR: attribute "ipaUserAuthType" not allowed
On the other hand, user-mod works fine:
user-mod
# ipa user-add hwurst --first="Hans" --last="Wurst" # ipa user-mod hwurst --user-auth-type=otp ---------------------- Modified user "hwurst" ---------------------- User login: hwurst First name: Hans Last name: Wurst Home directory: /home/hwurst Login shell: /bin/sh Email address: hwurst@mkosek-fedora20.test UID: 1327800030 GID: 1327800030 Account disabled: False User authentication types: otp Password: False Member of groups: ipausers Kerberos keys available: False
It looks like user-add not adding all needed objectclass in the precallback.
Should be an easy fix.
http://www.redhat.com/archives/freeipa-devel/2014-August/msg00104.html
master:
ipa-4-1:
ipa-4-0:
Metadata Update from @mkosek: - Issue assigned to npmccallum - Issue set to the milestone: FreeIPA 4.0.2
Log in to comment on this ticket.